2 matches found
CVE-2019-15095
DWSurvey through 2019-07-22 has reflected XSS via the design/qu-multi-fillblank!answers.action surveyId parameter...
CVE-2019-15095
DWSurvey (Java-based questionnaire system) is affected by CVE-2019-15095 through 2019-07-22, exposing a reflected XSS due to improper validation of client-side data in the surveyId parameter of design/qu-multi-fillblank!answers.action. The vulnerability enables execution of arbitrary client-side ...